This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/DPxgVxKdypoWDypZIndlqeZ0lLs.cer File: DPxgVxKdypoWDypZIndlqeZ0lLs.cer (raw, json) Hash identifier: b6uffL1up5DN1D/itM60DetAb5w2RUPQ1N2wKJcqfSM= Subject key identifier: 0C:FC:60:57:12:9D:CA:9A:16:0F:2A:59:22:77:65:A9:E6:74:94:BB Authority key identifier: 04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 Certificate issuer: /CN=A9162E3D0000/serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Certificate serial: E7A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer Manifest: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3305/DPxgVxKdypoWDypZIndlqeZ0lLs.mft caRepository: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3305/ Notify URL: https://rpki.cnnic.cn/rrdp/notify.xml Certificate not before: Mon 12 Jan 2026 19:58:05 +0000 Certificate not after: Sat 09 Jan 2027 08:23:18 +0000 Subordinate resources: AS: 151280 IP: 2401:b360::/32 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 Jan 2026 16:27:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59305 (0xe7a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9162E3D0000, serialNumber=041629B6A9EAB7CB1324EA3978F03796F889B540 Validity Not Before: Jan 12 19:58:05 2026 GMT Not After : Jan 9 08:23:18 2027 GMT Subject: CN=0CFC6057129DCA9A160F2A59227765A9E67494BB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:90:f6:1e:cb:64:da:1a:c0:16:d8:16:8b:ab: 81:5c:59:9e:5d:8a:69:75:59:18:6d:33:e0:26:90: 6e:9a:58:80:0f:7f:9d:c8:00:2d:c2:bb:e3:8a:4b: 5b:e2:97:c7:2e:cb:4c:f7:4c:83:1a:72:e5:6a:98: 9e:5f:75:57:a9:40:c3:c4:b3:fa:5a:ba:3a:41:5a: 23:1c:fb:c5:5d:fc:42:3f:1b:5b:74:a0:c1:55:d3: 23:b8:b3:82:d9:eb:f3:5d:49:41:f7:42:32:56:06: 3a:3f:67:8b:55:8b:c0:92:08:0e:e3:f1:fd:50:92: 7d:d7:ee:f2:25:4c:f8:7a:6b:0e:c5:05:85:88:fc: 67:be:eb:cf:62:13:c8:5e:5e:cb:7a:1f:61:06:47: 6f:09:90:66:ba:15:66:bf:68:7d:a4:b2:0b:a8:4f: c4:3f:e6:dd:05:bd:f0:3e:31:ea:f2:7f:81:41:df: 36:7d:ea:f4:49:87:23:cf:b4:ff:a2:3e:17:94:b0: b9:92:8d:1c:b6:41:c4:55:f3:83:03:fb:37:c3:bf: 82:7b:b5:71:dd:19:df:1f:a9:cb:ae:0f:49:f8:87: 08:d9:22:16:57:b4:77:22:c8:34:d9:0f:64:e6:ed: ea:b1:d2:41:ad:c8:a8:c6:d9:9a:7a:37:42:bc:df: 6d:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:FC:60:57:12:9D:CA:9A:16:0F:2A:59:22:77:65:A9:E6:74:94:BB X509v3 Authority Key Identifier: keyid:04:16:29:B6:A9:EA:B7:CB:13:24:EA:39:78:F0:37:96:F8:89:B5:40 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Subject Information Access: CA Repository - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3305/ RPKI Manifest - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3305/DPxgVxKdypoWDypZIndlqeZ0lLs.mft RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: 151280 sbgp-ipAddrBlock: critical IPv6: 2401:b360::/32 Signature Algorithm: sha256WithRSAEncryption 3f:76:77:26:84:ce:a7:f1:24:26:77:d7:93:3a:30:ef:84:1d: 74:86:5c:db:6b:12:d7:dd:e5:69:4e:a5:14:a1:09:a2:67:ec: ca:93:0a:d2:41:91:e4:4d:a0:bb:9e:86:e9:cb:1e:92:cd:f0: e3:d3:44:dc:72:7c:bc:cf:50:19:48:e6:25:60:85:9f:b3:5e: 37:bf:a1:b3:51:75:13:ac:46:d6:04:e5:2b:93:76:c5:6b:41: d5:89:88:04:00:35:14:fc:a6:f6:ac:fd:9e:bc:af:67:12:ec: 81:2c:80:7d:77:ba:13:81:c7:4b:76:8e:f2:4b:73:50:20:fd: 11:b4:df:f0:64:d4:13:9d:84:c8:94:ee:93:07:6e:3e:be:7d: 16:c8:c7:74:92:fd:95:6f:af:94:71:45:af:d3:8a:a2:ac:e3: c8:49:9d:4e:0a:be:f4:16:b8:da:62:6e:15:21:bc:6e:56:32: 3c:6b:d7:84:9d:f7:87:77:3f:3a:b7:3c:7d:4b:e8:18:e7:4d: 79:00:7f:6f:4f:f5:41:f3:4f:26:18:02:b9:7f:70:00:ad:c1: be:fe:8c:77:ff:96:af:16:46:f4:27:e6:b3:16:fb:74:d3:77: 05:b9:e3:93:f7:49:5f:dd:b7:6c:5e:fc:fc:2a:fd:92:45:ab: 75:94:a8:33 -----BEGIN CERTIFICATE----- MIIFbjCCBFagAwIBAgIDAOepMA0GCSqGSIb3DQEBCwUAMEoxFTATBgNVBAMTDEE5 MTYyRTNEMDAwMDExMC8GA1UEBRMoMDQxNjI5QjZBOUVBQjdDQjEzMjRFQTM5NzhG MDM3OTZGODg5QjU0MDAeFw0yNjAxMTIxOTU4MDVaFw0yNzAxMDkwODIzMThaMDMx MTAvBgNVBAMTKDBDRkM2MDU3MTI5RENBOUExNjBGMkE1OTIyNzc2NUE5RTY3NDk0 QkIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDkkPYey2TaGsAW2BaL q4FcWZ5diml1WRhtM+AmkG6aWIAPf53IAC3Cu+OKS1vil8cuy0z3TIMacuVqmJ5f dVepQMPEs/paujpBWiMc+8Vd/EI/G1t0oMFV0yO4s4LZ6/NdSUH3QjJWBjo/Z4tV i8CSCA7j8f1Qkn3X7vIlTPh6aw7FBYWI/Ge+689iE8heXst6H2EGR28JkGa6FWa/ aH2ksguoT8Q/5t0FvfA+Meryf4FB3zZ96vRJhyPPtP+iPheUsLmSjRy2QcRV84MD +zfDv4J7tXHdGd8fqcuuD0n4hwjZIhZXtHciyDTZD2Tm7eqx0kGtyKjG2Zp6N0K8 320vAgMBAAGjggJyMIICbjAdBgNVHQ4EFgQUDPxgVxKdypoWDypZIndlqeZ0lLsw HwYDVR0jBBgwFoAUBBYptqnqt8sTJOo5ePA3lviJtUAwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjBYBgNVHR8EUTBPME2gS6BJhkdyc3luYzovL3Jwa2kuY25uaWMu Y24vcnBraS9BOTE2MkUzRDAwMDAvQkJZcHRxbnF0OHNUSk9vNWVQQTNsdmlKdFVB LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZE MUZGMi9CQllwdHFucXQ4c1RKT281ZVBBM2x2aUp0VUEuY2VyMA8GA1UdEwEB/wQF MAMBAf8wDgYDVR0PAQH/BAQDAgEGMIHYBggrBgEFBQcBCwSByzCByDA5BggrBgEF BQcwBYYtcnN5bmM6Ly9ycGtpLmNubmljLmNuL3Jwa2kvQTkxNjJFM0QwMDAwLzMz MDUvMFgGCCsGAQUFBzAKhkxyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2 MkUzRDAwMDAvMzMwNS9EUHhnVnhLZHlwb1dEeXBaSW5kbHFlWjBsTHMubWZ0MDEG CCsGAQUFBzANhiVodHRwczovL3Jwa2kuY25uaWMuY24vcnJkcC9ub3RpZnkueG1s MBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwJO8DAgBggrBgEFBQcBBwEB/wQRMA8w DQQCAAIwBwMFACQBs2AwDQYJKoZIhvcNAQELBQADggEBAD92dyaEzqfxJCZ315M6 MO+EHXSGXNtrEtfd5WlOpRShCaJn7MqTCtJBkeRNoLuehunLHpLN8OPTRNxyfLzP UBlI5iVghZ+zXje/obNRdROsRtYE5SuTdsVrQdWJiAQANRT8pvas/Z68r2cS7IEs gH13uhOBx0t2jvJLc1Ag/RG03/Bk1BOdhMiU7pMHbj6+fRbIx3SS/ZVvr5RxRa/T iqKs48hJnU4KvvQWuNpibhUhvG5WMjxr14Sd94d3Pzq3PH1L6BjnTXkAf29P9UHz TyYYArl/cACtwb7+jHf/lq8WRvQn5rMW+3TTdwW545P3SV/dt2xe/Pwq/ZJFq3WU qDM= -----END CERTIFICATE-----Generated at Mon Jan 19 12:19:02 2026 by rpki-client